Route Origin Authorization
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nlrssf/oObnUzAe_A2_YYMR0Rx3lHoNzhM.roa
File: oObnUzAe_A2_YYMR0Rx3lHoNzhM.roa (raw, json)
Hash identifier: gYbjZwtRgfHabZUWkiJUALU0PWm+bTRsFmMMhks4MTo=
Subject key identifier: A0:E6:E7:53:30:1E:FC:0D:BF:61:83:11:D1:1C:77:94:7A:0D:CE:13
Certificate issuer: /CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Certificate serial: 0244
Authority key identifier: 71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/oObnUzAe_A2_YYMR0Rx3lHoNzhM.roa
Signing time: Sat 13 Apr 2024 15:55:04 +0000
ROA not before: Sat 13 Apr 2024 15:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15562
IP address blocks: 194.104.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 19:55:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 580 (0x244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d14ebb255dc058d4bfa5a51c93f73f830ab88f
Validity
Not Before: Apr 13 15:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A0E6E753301EFC0DBF618311D11C77947A0DCE13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:ea:4a:76:71:ec:d2:99:0c:d0:c5:49:2d:
1c:8d:7f:45:9c:61:53:8a:a0:ba:fe:fe:f1:42:3a:
d1:d4:5c:3a:e7:ce:46:2a:08:97:3f:9b:01:c0:d0:
0f:fa:7d:7b:05:20:9f:c5:f6:25:1d:72:6d:bd:7d:
a6:2e:ac:b3:57:1d:31:f1:ef:fa:e4:2c:c0:18:89:
58:70:2e:6d:3b:fe:8d:bb:be:37:5c:a2:12:68:aa:
42:f3:eb:1c:e9:d6:d4:52:23:48:5f:4a:a6:fe:39:
d4:3e:26:40:b0:76:71:c0:51:69:73:37:4e:a6:bd:
ea:97:4b:47:30:7a:76:5e:ae:ec:ea:e9:87:4a:79:
32:15:e9:20:4d:b0:d0:70:94:4e:9b:d3:51:8a:7e:
57:e9:0b:36:f8:79:34:74:ff:10:4a:6f:70:12:2d:
9c:bb:55:1c:1c:18:0b:ef:6f:bc:53:ee:d7:3f:ef:
30:b7:15:32:4d:d0:35:41:ea:88:32:20:85:26:3f:
32:64:89:1f:8f:54:53:43:6d:7d:ab:4b:08:bf:2b:
83:77:df:61:74:3e:70:9f:8b:13:65:58:e3:2c:b7:
f0:18:92:cb:dc:25:f2:9e:b1:13:39:63:10:47:9e:
12:28:0c:28:eb:32:a3:09:1c:ef:21:6f:2c:6b:90:
0c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E6:E7:53:30:1E:FC:0D:BF:61:83:11:D1:1C:77:94:7A:0D:CE:13
X509v3 Authority Key Identifier:
keyid:71:D1:4E:BB:25:5D:C0:58:D4:BF:A5:A5:1C:93:F7:3F:83:0A:B8:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/cdFOuyVdwFjUv6WlHJP3P4MKuI8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdFOuyVdwFjUv6WlHJP3P4MKuI8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nlrssf/oObnUzAe_A2_YYMR0Rx3lHoNzhM.roa
sbgp-ipAddrBlock: critical
IPv4:
194.104.129.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:c5:41:93:7b:10:1f:42:69:18:6c:10:ea:48:4e:01:d3:6a:
85:17:2f:a0:fe:14:11:d3:74:67:1c:91:45:db:6c:ae:eb:89:
4b:5b:e9:90:98:9b:4f:84:2e:16:d8:c8:25:61:b9:19:cc:2c:
a1:7d:e6:eb:36:f9:98:74:0c:6c:59:f2:f2:81:0b:71:cb:0c:
a2:29:4f:cf:a7:86:e3:44:ca:a2:97:1a:29:17:97:8c:02:b7:
9b:c9:15:d3:a5:d6:c9:70:9e:c7:c8:c2:8b:e4:6c:9a:41:f1:
12:fd:b0:1d:0a:43:9f:07:00:0e:75:81:00:2d:24:2b:d6:33:
1f:5d:cd:dd:84:70:96:5b:cd:18:38:f4:8b:ee:80:64:b6:ee:
fd:b8:97:1f:21:d9:83:2f:10:91:4e:b9:e5:9e:aa:d5:5e:af:
59:7a:ea:0c:9b:1b:13:e0:03:d9:e1:e1:c9:63:13:d2:08:47:
60:b2:54:91:1f:85:33:ae:1d:80:78:ba:e3:b4:f8:b7:4d:55:
2f:28:79:7a:81:0c:db:0f:25:b9:61:e7:d6:c4:80:15:02:97:
83:eb:30:6a:7c:14:56:97:ea:9b:53:9b:65:6b:8a:4f:54:a4:
47:87:34:ab:aa:9e:83:2c:9e:23:da:80:95:73:4a:67:4a:12:
28:dd:12:61
-----BEGIN CERTIFICATE-----
MIIEojCCA4qgAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzFk
MTRlYmIyNTVkYzA1OGQ0YmZhNWE1MWM5M2Y3M2Y4MzBhYjg4ZjAeFw0yNDA0MTMx
NTU1MDRaFw0yNTA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKEEwRTZFNzUzMzAxRUZD
MERCRjYxODMxMUQxMUM3Nzk0N0EwRENFMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4cOpKdnHs0pkM0MVJLRyNf0WcYVOKoLr+/vFCOtHUXDrnzkYq
CJc/mwHA0A/6fXsFIJ/F9iUdcm29faYurLNXHTHx7/rkLMAYiVhwLm07/o27vjdc
ohJoqkLz6xzp1tRSI0hfSqb+OdQ+JkCwdnHAUWlzN06mveqXS0cwenZeruzq6YdK
eTIV6SBNsNBwlE6b01GKflfpCzb4eTR0/xBKb3ASLZy7VRwcGAvvb7xT7tc/7zC3
FTJN0DVB6ogyIIUmPzJkiR+PVFNDbX2rSwi/K4N332F0PnCfixNlWOMst/AYksvc
JfKesRM5YxBHnhIoDCjrMqMJHO8hbyxrkAwDAgMBAAGjggG+MIIBujAdBgNVHQ4E
FgQUoObnUzAe/A2/YYMR0Rx3lHoNzhMwHwYDVR0jBBgwFoAUcdFOuyVdwFjUv6Wl
HJP3P4MKuI8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5scnNz
Zi9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY3JsMGQGCCsGAQUFBwEBBFgw
VjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jZEZPdXlWZHdGalV2NldsSEpQM1A0TUt1STguY2VyMA4GA1UdDwEB
/wQEAwIHgDBoBggrBgEFBQcBCwRcMFowWAYIKwYBBQUHMAuGTHJzeW5jOi8vY2hs
b2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUtbmxyc3NmL29PYm5VekFlX0EyX1lZ
TVIwUngzbEhvTnpoTS5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADC
aIEwDQYJKoZIhvcNAQELBQADggEBANfFQZN7EB9CaRhsEOpITgHTaoUXL6D+FBHT
dGcckUXbbK7riUtb6ZCYm0+ELhbYyCVhuRnMLKF95us2+Zh0DGxZ8vKBC3HLDKIp
T8+nhuNEyqKXGikXl4wCt5vJFdOl1slwnsfIwovkbJpB8RL9sB0KQ58HAA51gQAt
JCvWMx9dzd2EcJZbzRg49IvugGS27v24lx8h2YMvEJFOueWeqtVer1l66gybGxPg
A9nh4cljE9IIR2CyVJEfhTOuHYB4uuO0+LdNVS8oeXqBDNsPJblh59bEgBUCl4Pr
MGp8FFaX6ptTm2Vrik9UpEeHNKuqnoMsniPagJVzSmdKEijdEmE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:55 2024 by rpki-client on console-fra.rpki-client.org